Does your Concordia password pass the test?

From banking to shopping, most of our day-to-day transactions can now be accomplished with the click of a mouse. While convenient, this also makes our personal information vulnerable.

Michel Robitaille, director of IT architecture, security and planning at Concordia, says strong passwords are often the only barrier between us and the outside world.

“They protect us against everything from credit card fraud to identity theft,” he says.

But while solid passwords help keep unwanted eyes from seeing your private information, Robitaille warns that hackers have become efficient at breaking them.

“Hacking programs have been designed to run through entire dictionaries of words and all available characters as a means of accessing accounts.”

Combatting cyberattacks

To combat this, Concordia joined numerous other institutions in February 2017 increasing password complexity requirements and implementing new account lockout procedures.

Today, Concordia passwords must contain one upper case letter, one lower case letter, one number and one non-alphanumeric character (example: @, $, *). Netnames and display names are also be prohibited from being used in passwords.

“More universities are being targeted by increased IT security risks and improved hacker technology. We needed to put up additional barriers to make it harder for illegitimate users to gain access to accounts,” Robitaille explains.

In addition to password complexity, multiple failed password attempts will now lock you out of your account. The aim? To combat coordinated cyberattacks.

“You get five tries to log in to your account. If all of your attempts fail you will be locked out for 15 minutes,” Robitaille says.

Don’t worry, though. If you need immediate access to your account, you can contact the IITS Service Desk at 514-848-2424, ext. 7613.

Bonus password protection tips

Always keep your password a secret. Don't share it, and don't write it down. Use a password for your Concordia account that is different from your other accounts like online banking and social media. It is best to choose a unique password for each site that requires a login.